We performed a comparison between Anomali ThreatStream and ArcSight Enterprise Security Manager (ESM) based on real PeerSpot user reviews.
Find out what your peers are saying about Recorded Future, Check Point Software Technologies, Microsoft and others in Threat Intelligence Platforms."The feature I have found most valuable is credential monitoring. This feature is easy and quick."
"For the typical malware or intrusion, this solution assists us by identifying the symptoms based on network traffic from the application servers."
"We utilize ArcSight ESM for real-time threat detection in our organization. We have custom rules that we've developed on top of the WAN services, along with scheduled licensing activities."
"ArcSight gives us better visibility into threats that were unknown earlier."
"ESM has valuable features for event prediction and security analysis."
"The product is quite mature. It's been around for a long time."
"We use ArcSight ESM for log analysis and security alerts. It warns us of threats and then helps us conduct a forensic investigation of a cyber attack or internal incident after it happens."
"It is a vital tool for live monitoring and helps us to understand the traffic alerts of any major issue on the network, thereby reducing hacking attempts."
"Very good real-time reporting with a good dashboard."
"Less code in integration would be nice when building blocks."
"It would be nice if the interface were more user-friendly, with, for example, a minimal number of tabs to navigate."
"They also could improve the product by integrating user and identity behavior analytics."
"The initial setup is very complex. We had to architect a deployment which allowed us to incorporate an ever growing number of customers into our hosted instance of ArcSight."
"They should try to include business logic vulnerabilities in the SIEM tool."
"The stability isn't quite perfect. We occasionally run into problems."
"In certain cases, this product does have false positives, which the company should work on."
"The centralized dashboard for the hybrid cloud environment needs to be more focused. It needs to be redefined because it's missing most of the information. It should be a little bit easy to use. Currently, integration with various applications and connectors is not that easy. Deployment is easy, but integration is not that easy. ArcSight also has a very high bandwidth consumption to pull the local servers. It should have some kind of better process or ability to transfer files from on-premises to the cloud, from the cloud to on-premises, and from a cloud to another cloud."
"The solution could be more stable."
More ArcSight Enterprise Security Manager (ESM) Pricing and Cost Advice →
Anomali ThreatStream is ranked 5th in Threat Intelligence Platforms with 1 review while ArcSight Enterprise Security Manager (ESM) is ranked 12th in Security Information and Event Management (SIEM) with 93 reviews. Anomali ThreatStream is rated 7.0, while ArcSight Enterprise Security Manager (ESM) is rated 7.8. The top reviewer of Anomali ThreatStream writes "Easy and quick credential monitoring; tech support could be improved". On the other hand, the top reviewer of ArcSight Enterprise Security Manager (ESM) writes "Allows for monitoring logs according to industry standards within ESM but has a total capacity capped at 12 TB, limiting real-time data retention periods". Anomali ThreatStream is most compared with Recorded Future, ThreatConnect Threat Intelligence Platform (TIP), ThreatQ, Splunk Enterprise Security and Group-IB Threat Intelligence, whereas ArcSight Enterprise Security Manager (ESM) is most compared with Splunk Enterprise Security, ArcSight Intelligence, Trellix ESM, IBM Security QRadar and AWS Security Hub.
We monitor all Threat Intelligence Platforms reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.